Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/R-9F969vqqBP3OT4IPulHFHP2Uo.roa
File: R-9F969vqqBP3OT4IPulHFHP2Uo.roa (raw, json)
Hash identifier: bC9c2ihMO74eJNKPNSUseolCAUuYX3DQkq9B9D43gNU=
Subject key identifier: 47:EF:45:F7:AF:6F:AA:A0:4F:DC:E4:F8:20:FB:A5:1C:51:CF:D9:4A
Certificate issuer: /CN=b4253c4f233ce9847699ae68ecbf5d7514b0fadb
Certificate serial: 0195D20CC8577497EC7C4259C71E2B7DD8DF
Authority key identifier: B4:25:3C:4F:23:3C:E9:84:76:99:AE:68:EC:BF:5D:75:14:B0:FA:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tCU8TyM86YR2ma5o7L9ddRSw-ts.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/R-9F969vqqBP3OT4IPulHFHP2Uo.roa
Signing time: Wed 26 Mar 2025 10:43:27 +0000
ROA not before: Wed 26 Mar 2025 10:43:27 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 34549
IP address blocks: 5.1.64.0/19 maxlen: 32
5.1.64.0/20 maxlen: 32
5.1.64.0/24 maxlen: 32
5.1.65.0/24 maxlen: 32
5.1.66.0/24 maxlen: 32
5.1.67.0/24 maxlen: 32
5.1.70.0/24 maxlen: 32
5.1.72.0/24 maxlen: 32
5.1.73.0/24 maxlen: 32
5.1.75.0/24 maxlen: 24
5.1.76.0/24 maxlen: 32
5.1.79.0/24 maxlen: 24
5.1.82.0/24 maxlen: 32
5.1.84.0/24 maxlen: 32
5.1.85.0/24 maxlen: 32
5.1.86.0/24 maxlen: 32
5.1.87.0/24 maxlen: 32
5.1.89.0/24 maxlen: 32
5.1.90.0/24 maxlen: 32
5.1.91.0/24 maxlen: 32
5.1.93.0/24 maxlen: 32
5.1.94.0/23 maxlen: 32
5.1.94.0/24 maxlen: 32
31.47.232.0/21 maxlen: 32
45.155.248.0/22 maxlen: 22
80.77.16.0/20 maxlen: 32
80.77.16.0/24 maxlen: 32
80.77.31.254/32 maxlen: 32
83.243.40.0/21 maxlen: 32
83.243.41.0/24 maxlen: 24
83.243.44.0/24 maxlen: 32
83.243.45.0/24 maxlen: 32
83.243.45.114/32 maxlen: 32
83.243.46.0/24 maxlen: 32
83.243.46.83/32 maxlen: 32
83.243.47.0/24 maxlen: 32
94.247.40.0/21 maxlen: 32
94.247.45.0/24 maxlen: 32
94.247.46.0/24 maxlen: 32
178.251.224.0/21 maxlen: 21
178.251.224.0/22 maxlen: 32
178.251.225.0/24 maxlen: 32
178.251.228.0/23 maxlen: 32
178.251.229.0/24 maxlen: 32
178.251.230.0/23 maxlen: 32
178.251.230.0/24 maxlen: 32
185.37.144.0/22 maxlen: 32
185.37.144.0/24 maxlen: 24
185.37.145.0/24 maxlen: 32
185.37.147.0/24 maxlen: 32
185.44.104.0/22 maxlen: 32
185.44.106.0/24 maxlen: 32
185.44.107.0/24 maxlen: 32
185.90.160.0/23 maxlen: 32
185.90.160.0/24 maxlen: 32
185.90.161.0/24 maxlen: 32
185.90.163.0/24 maxlen: 32
185.150.96.0/22 maxlen: 32
195.10.195.0/24 maxlen: 32
2a00:f820::/29 maxlen: 29
2a01:360::/29 maxlen: 29
2a01:360::/32 maxlen: 32
2a07:6fc0::/29 maxlen: 48
2a07:6fc0:452::/48 maxlen: 48
2a0f:b80::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:d2:0c:c8:57:74:97:ec:7c:42:59:c7:1e:2b:7d:d8:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4253c4f233ce9847699ae68ecbf5d7514b0fadb
Validity
Not Before: Mar 26 10:43:27 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=47ef45f7af6faaa04fdce4f820fba51c51cfd94a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:4e:f7:ac:34:19:87:62:18:d1:ed:22:dd:35:
e5:72:36:8f:cb:f6:d2:6e:68:f9:f7:1a:5a:70:27:
55:74:6f:07:0a:f2:d5:3d:44:2c:e0:3d:af:05:13:
eb:7e:44:41:31:9b:98:5f:39:86:b6:50:69:3e:4a:
b3:db:48:bf:7e:0d:27:0c:4a:77:65:46:39:5e:14:
7e:59:08:e1:dd:4f:ac:a5:bf:e7:49:3c:46:c4:44:
d1:a1:40:29:83:8a:c8:8f:2a:4a:59:77:03:6e:c1:
c9:4a:12:ad:57:6f:c7:8c:e0:a0:64:c5:6d:c8:51:
78:1e:a2:51:c6:17:b0:99:1d:61:5a:b5:c5:95:a5:
9f:ba:04:ad:65:99:cb:d1:86:2b:9f:30:6d:3f:e7:
51:0a:3f:59:c7:04:84:12:53:6c:2b:39:27:bf:b0:
d3:39:e2:71:89:71:24:70:83:75:fa:6f:57:13:8a:
fe:d8:dc:02:32:b4:32:5a:ef:69:8d:a8:60:ab:4f:
37:35:01:62:38:81:4f:9e:39:d9:8f:36:5e:24:ad:
52:97:eb:e9:a1:c5:91:9d:c2:73:41:fe:1b:64:e1:
95:0e:0a:4e:19:73:4e:e1:ff:7b:da:72:3a:c6:b4:
07:64:f2:6f:3c:bd:b5:af:53:07:9d:1a:29:60:77:
b5:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:EF:45:F7:AF:6F:AA:A0:4F:DC:E4:F8:20:FB:A5:1C:51:CF:D9:4A
X509v3 Authority Key Identifier:
keyid:B4:25:3C:4F:23:3C:E9:84:76:99:AE:68:EC:BF:5D:75:14:B0:FA:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tCU8TyM86YR2ma5o7L9ddRSw-ts.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/R-9F969vqqBP3OT4IPulHFHP2Uo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/tCU8TyM86YR2ma5o7L9ddRSw-ts.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.1.64.0/19
31.47.232.0/21
45.155.248.0/22
80.77.16.0/20
83.243.40.0/21
94.247.40.0/21
178.251.224.0/21
185.37.144.0/22
185.44.104.0/22
185.90.160.0/23
185.90.163.0/24
185.150.96.0/22
195.10.195.0/24
IPv6:
2a00:f820::/29
2a01:360::/29
2a07:6fc0::/29
2a0f:b80::/29
Signature Algorithm: sha256WithRSAEncryption
a3:c6:93:62:b4:5d:83:05:ab:54:18:5f:c6:56:5b:94:26:56:
38:8c:e2:a9:6a:99:38:a0:20:86:28:39:6e:a5:ae:3a:9a:c5:
c7:23:be:9d:a8:c1:fa:6a:be:3d:b5:63:36:21:8c:db:b7:a2:
4b:6c:ac:09:d3:94:26:e3:62:87:ef:be:08:5f:c8:43:64:55:
40:8b:93:49:f7:4e:1a:2b:36:f0:81:7c:81:7e:00:c0:4f:a5:
ac:93:95:35:bf:bb:82:dd:e2:6f:de:d6:d5:75:42:a2:76:92:
9b:00:4e:bf:47:ba:47:74:4b:cf:3c:28:4c:5b:8a:9a:c5:bd:
df:2f:da:18:56:ac:e8:53:dd:50:f4:e1:5f:87:c4:87:8c:63:
33:9d:53:d9:0b:f9:c1:96:4d:50:93:e8:bb:e4:4c:56:b2:d5:
d7:09:13:b2:d1:13:59:e3:a0:95:d4:8c:87:ee:4b:38:fa:14:
0f:4c:1a:0d:f3:e1:bc:a0:e8:99:48:7f:b3:da:14:34:e3:2d:
0d:71:76:a2:12:e5:7c:80:96:33:aa:7c:f6:ec:b9:6c:cb:70:
9d:76:e8:f2:b5:f8:37:28:91:4c:76:23:e5:8d:64:21:28:f2:
a9:9a:c7:72:bb:c7:5b:51:15:2e:ad:0f:70:6b:ce:22:73:e1:
b1:b9:05:75
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sun Apr 6 00:02:24 2025 by rpki-client